Add git-secrets-scan workflow (#74)

Add `git-secrets-scan` workflow

Signed-off-by: currantw <[email protected]>

Author: currantw

.github/workflows/git-secrets-scan.yml

@@ -0,0 +1,33 @@
+name: Git Secrets Scan
+
+permissions:
+  contents: read
+
+on:
+  pull_request:
+  workflow_dispatch:
+
+concurrency:
+  group: git-secrets-scan-${{ github.head_ref || github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  scan:
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v5
+
+      - name: Install git-secrets
+        run: |
+          git clone --depth 1 --branch 1.3.0 https://github.com/awslabs/git-secrets.git
+          cd git-secrets
+          sudo make install
+
+      - name: Configure git-secrets
+        run: git secrets --register-aws
+
+      - name: Run git-secrets
+        run: git secrets --scan